Attack on Linux reported (again)

For discussions about security.
Post Reply
Message
Author
dogle
Posts: 409
Joined: Thu 11 Oct 2007, 12:41

Attack on Linux reported (again)

#1 Post by dogle »

http://www.theregister.co.uk/2011/08/31 ... ty_breach/

The shape of things to come?
(edit - see new post September 12)
Last edited by dogle on Mon 12 Sep 2011, 16:44, edited 2 times in total.

User avatar
Dougal
Posts: 2502
Joined: Wed 19 Oct 2005, 13:06
Location: Hell more grotesque than any medieval woodcut

#2 Post by Dougal »

What Jon Corbet has to say is likely more intelligent than what El Reg report...
What's the ugliest part of your body?
Some say your nose
Some say your toes
But I think it's your mind

Bruce B

Re: Attack on Linux reported

#3 Post by Bruce B »

dogle wrote:http://www.theregister.co.uk/2011/08/31 ... ty_breach/

The shape of things to come?
The way I read it was it was not an attack on a Linux vulnerability, rather other vulnerabilities not associated with Linux itself.

~

nooby
Posts: 10369
Joined: Sun 29 Jun 2008, 19:05
Location: SwedenEurope

#4 Post by nooby »

Would puppy then be as safe as Slitaz or TinyCore or some other non-root? oops I do run Slitaz as root so that does not help me then?

But TCL I run as user. Am I more safe on TCL then? I mean in relation to what them write about there?

Puppy has built in servers? but as long as one don't call them up them don't run in the background or do they?
I use Google Search on Puppy Forum
not an ideal solution though

User avatar
d4p
Posts: 439
Joined: Tue 13 Mar 2007, 02:30

#5 Post by d4p »


nooby
Posts: 10369
Joined: Sun 29 Jun 2008, 19:05
Location: SwedenEurope

#6 Post by nooby »

d4p that one from 2004 was also about Servers.
Does the average user of puppy have the server activated at boot? Or does one have to start a special program?

What is the name of the server can one stop it from going on?
I use Google Search on Puppy Forum
not an ideal solution though

WillM
Posts: 173
Joined: Wed 30 Dec 2009, 04:42
Location: Oakland, California

#7 Post by WillM »

Hi nooby,

The name of the web server on Puppy Linux is called hiawatha. It must be started manually, so that should not be running.

nooby
Posts: 10369
Joined: Sun 29 Jun 2008, 19:05
Location: SwedenEurope

#8 Post by nooby »

Thanks, now when you give me the name I do remember I have seen it many times in the forum but have never read about it due to me not into server and barely get what it is. sure one can place files on such and then others can ftp to and fro. but that is all I know.

Ooops Edit. All of you know that there is a "Server" built into Opera!!!

So how safe is that one then. Is that one on all the time maybe? I use Firefox. Does that one maybe act as a server too? Flash addon maybe does :)

What I don't like about AV is that the free ones seldom are so good that them can tell that one are under attack only much later can find that a signature is a known such one but then that one have been there for days doing damage.

What we would need is software that "sense" something bad is going on and it shut it out and told us instantly. An intelligent watcher over what come in and goes out.
I use Google Search on Puppy Forum
not an ideal solution though

User avatar
Dougal
Posts: 2502
Joined: Wed 19 Oct 2005, 13:06
Location: Hell more grotesque than any medieval woodcut

#9 Post by Dougal »

nooby wrote:d4p that one from 2004 was also about Servers.
That's also the time when MS were spending a lot of money to get people to publish lies about Linux... they even had a website "proving" that Windows Server is better than Linux.

Nearly everything published on internet "news" sites should not be taken seriously... not only is it badly written (and by ignorant people), but also tends to be propaganda for some corporation or other (see, for example, how since Condé Nast acquired Ars Technica, Ars has become strangely pro-Apple and anti-Google/Android slanted...).
What's the ugliest part of your body?
Some say your nose
Some say your toes
But I think it's your mind

nooby
Posts: 10369
Joined: Sun 29 Jun 2008, 19:05
Location: SwedenEurope

#10 Post by nooby »

okay, we are all a bit biased maybe :)
At least I am a Frugal Install NTFS Fan
Last edited by nooby on Mon 12 Sep 2011, 18:29, edited 1 time in total.
I use Google Search on Puppy Forum
not an ideal solution though

dogle
Posts: 409
Joined: Thu 11 Oct 2007, 12:41

#11 Post by dogle »

ooops! ......
Linux Foundation infrastructure including LinuxFoundation.org, Linux.com, and their subdomains are down for maintenance due to a security breach that was discovered on September 8, 2011.
http://www.Linux.com

nooby
Posts: 10369
Joined: Sun 29 Jun 2008, 19:05
Location: SwedenEurope

#12 Post by nooby »

that is four days ago. Seems severe thing or is it normal that one ahve problem for four days?
I use Google Search on Puppy Forum
not an ideal solution though

User avatar
Dave_G
Posts: 453
Joined: Thu 21 Jul 2011, 13:53

#13 Post by Dave_G »

Yup, still down so it must be serious.

robotgirl
Posts: 11
Joined: Thu 08 Sep 2011, 21:29

#14 Post by robotgirl »

they probably just don't want to go back up until they know the root (no pun intended) of the problem, it's not really that uncommon for a site to stay down for a few days after an attack like this. This is a security breach, not a simple DDOS attack or something.

User avatar
Dougal
Posts: 2502
Joined: Wed 19 Oct 2005, 13:06
Location: Hell more grotesque than any medieval woodcut

#15 Post by Dougal »

dogle wrote:ooops! ......
Linux Foundation infrastructure including LinuxFoundation.org, Linux.com, and their subdomains are down for maintenance due to a security breach that was discovered on September 8, 2011.
From what I understand, H. Peter Anvin (x86 subsystem maintainer, Syslinux developer etc.) had a trojan on his computer... so getting into kernel.org would have been easy and from there probably also linux.com.
What's the ugliest part of your body?
Some say your nose
Some say your toes
But I think it's your mind

nooby
Posts: 10369
Joined: Sun 29 Jun 2008, 19:05
Location: SwedenEurope

#16 Post by nooby »

Obviously it does happen even to those that have knowledge.
So much easier it must be to invade people who don't know at all?

We need people who cares about our need for protection.
I use Google Search on Puppy Forum
not an ideal solution though

Post Reply